動(dòng)態(tài)網(wǎng)絡(luò)環(huán)境下建立VPN的安全動(dòng)態(tài)隧道機(jī)制
Secure and Dynamic Tunneling Mechanism of Construction VPN in Dynamic Network
-
摘要: 隨著多種接入方式的出現(xiàn),許多局域網(wǎng)接入公共網(wǎng)絡(luò)采用了動(dòng)態(tài)地址的連接,靜態(tài)配置的虛擬專用網(wǎng)(VPN)便不再適用.本文研究了動(dòng)態(tài)網(wǎng)絡(luò)環(huán)境下如何交換信息、建立VPN.提出了安全動(dòng)態(tài)隧道機(jī)制,定義了動(dòng)態(tài)建立隧道的報(bào)文格式,解決了上述問(wèn)題,并進(jìn)一步增加了加密認(rèn)證和抗重播攻擊的功能,避免引入的安全隱患.經(jīng)實(shí)驗(yàn)證明,該機(jī)制可以安全有效地在動(dòng)態(tài)網(wǎng)絡(luò)環(huán)境下建立VPN.Abstract: As emergence of several access methods, many LANs use access of dynamic IP address. Virtual Private Network(VPN)of static configuration is not applicable. Thus, how to exchange information, construct VPN in dynamic network is indicated as new question for research. A secure and dynamic tunneling mechanism is presented. And message of this mechanism is defined. This mechanism can solve above mentioned issue. Authentication and anti-replay function are introduced to avoid secure problems. The result of experiment shows that this mechanism can construct VPN securely and efficiently in dynamic network.
-
Venkateswaran R. Virtual private networks. IEEE Potentials,2001, 20(1): 11 - 15.[2]Huan Liang, Kabranov O, et al.. Minimal cost design of virtual private networks. Proceeding of the 2002 IEEE Canadian Conference on Electrical and Computer Engineering, 2002, vol.3:1610- 1615.[3]Anerousis N. Dynamic virtual network dimensioning in cost-sensitive environments[J].Global Telecommunications Conference, 1999. GLOBECOM 9.1999, vol.2:1511-[4]Metz C. The latest in virtual private networks: part Ⅰ[J].IEEE Internet Computing Magazine.2003, 7(1 ):87-[5]Ramanujan R, Kaddoura M, et al.. VPNshield: protecing VPN services from denial-of-service (DoS) attacks[J].DARPA Information Survivability Conference and Exposition, 2003,Proceedings.2003, vol2:138- -
計(jì)量
- 文章訪問(wèn)數(shù): 2462
- HTML全文瀏覽量: 146
- PDF下載量: 722
- 被引次數(shù): 0
下載:
